"Ukraine Blames Sandworm for Wiper Attack on News Agency"

The Computer Emergency Response Team of Ukraine (CERT-UA) has attributed the wiper attack on Ukrinform that occurred on January 17 to Russia's Main Directorate of the General Staff of the Armed Forces (GRU). According to CERT-UA, the malicious actors sought to disrupt the Ukrainian news outlet using the CaddyWiper malware, which was first identified in 2022. This malware deletes user data and partition information from attached drives. Ukrainian authorities stated that the attack's characteristics led to the Sandworm (UAC-0082) collective. Since Russia launched its full-scale invasion of Ukraine last year, the GRU-affiliated hacker group has been among the most aggressive in targeting the country. CERT-UA also revealed that the Russian hacker community boasted about the Ukrinform attack on a Telegram channel. This article continues to discuss CERT-UA linking the Russian government to the recent cyberattack on Ukraine's news agency Ukrinform. 

Cybernews reports "Ukraine Blames Sandworm for Wiper Attack on News Agency"